We have recently become aware of a security issue relating to a third-party library included with XenForo Media Gallery and have released a patch to resolve this issue. The issue is a cross site scripting (XSS) flaw that could allow an attacker to steal cookies or force a user to take actions without their consent or knowledge (possibly including administrative actions). We recommend all XenForo Media Gallery customers use one of the methods described below to resolve this issue and improve...
XenForo Media Gallery Security Patch (1.0.1a)
Continue reading...
XenForo Media Gallery Security Patch (1.0.1a)
Continue reading...